Oracle Role for User Administration

Similar Messages

• Role for User Administrator(Read only)

  Hi All,
  I want to create a role just like the role ofUser Administrator.But I want to make it read only.I want that the end user can perform search operation,can see the locked user,can see the roles but can't delete the user.Basically ,they shouldn't able to do the modification.
  Any suggestions will be appreciated.
  Paritosh

  I have only managed to do this by creating a role and assigning the relevant User Admin iViews to the role and then changing the End User Permissions on the role.
  I assigned the ReadAll Premission. That did the trick for me.
  Groups unfortunately require the manage_groups Permission, so we do not allow the viewing of groups.

• Changing role for users

  Hi,
  in forms 10g , it's possible to change the role for user
  REVOKE role_name FROM :USERNAME;

  This should work, but the user revoking a role from a different user needs to have the admin option of this role.
  When creating a role, by default the "Admin option" for that role should be enabled for the user creating the role.
  Normally, this would be the schema-owner of the application objects ...
  A user holding the "admin option" may grant a role to a different user and grant the other user "admin option" on this role...

• Is there a Oracle site for user to practice Portal?

  Hello,
  Is there a Oracle site for user to practice Portal?
  Thank you for your attention,
  Emily123

  Not exactly, but you can do some of this at http://portalstudio.oracle.com like (testing your portlets). It might be a helpful resource for you too.
  Portal is a rather easy setup too if you have a system with at least 1.5 GB of RAM where you can install the infrastructure & middle-tiers on a single system. But I'd still look at this site to see if it has resources that help you with your Portal development.
  I hope this helps.

• HI,how to find roles for user based on userid?

  hi,
  i need to find roles for each user based on user id.
  can i know any one knows this how to get roles for user?
  thanks,
  jpullareddy

  hi,
  i solve my self.
  i am getting values
  jpullareddy

• Restrict the role of User Administrator

  Hello all,
  I need to know that if it is possible to restrict the Role of an User Administrator to assign only a specific set of Roles to the end user.
  For example : The user administrator should be able to assign only say Managers, Employees Roles to the Users and not any other roles like Super Administrators etc.
  If so, how can we achieve that?
  Regards
  Avik

  There is a authorization object (combined with a parameter) that does this restriction:
  S_SPO_PAGE
  Definition
  Using authorization object S_SPO_PAGE, you can restrict the maximum number of pages of a request that can be printed on a particular printer.
  This authorization check is only active if profile parameter rspo/auth/pagelimit is set to 1.
  Defined fields
  SPODEVICE       Device name for which the restriction is to apply.
  SPOPAGES        Maximum number of pages allowed; enter a range (0 to n) here

• What authorization-roles for user login (java stack)

  Hello SAP-Fans ,
  which authorization role needs to be assigned to the users for logging into a java-stack on port 50.000?
  We always get the error-message: "Error 403 forbidden, You are not authorized to view the requested resource."
  I know this is a beginner's question. Java is completely new to us.
  Thanks in advance
  Danny Winn

  Hi Danny,
  Welcome to SDN,
  Logon to the portal with the user Administrator, go to User Administartion and create a user for yourself by assigning Super Admin Role.
  portal Url must be http://<host.fqdn>:50XX0/irj/portal where XX is the system number in this case 00.
  You will able to see at the user admin tab all the SAP standard roles.
  regards
  Juan
  Please reward with points if helpful

• I can not find sap_bc _jsf_communication role for user sapjsf user

  hi Masters,
              when i am trying  to create user in portal, it showing error message. " an error occured in  persistence .Please contact system administrator"..
           i found there are no roles assigned to sapjsf user. we need sap_bc_jsf_communication role  for sapjsf  user.. But there are no roles assigned to sapjsf user.
  how can i assing the sap_bc_jsf_communicaiton role to sap jsf user. Pease give reply.
  POrtal and r3 are installed in one system only on db2 database.
  Edited by: sujana mullapudi on Dec 7, 2009 4:34 PM

  hi ,
  I have checked the sapjsf user roles  in su01 t-code- r3 side. for sap jsf user the two roles sap_bc_jsf_communication and another role sap_bc_jsf_communication_role(something Like). these two roles already exist for sapjsf user in r3 system.
  but in portal side the roles are not exist . can you tell me whats the reason, and please reply me.

• DEFAULT ROLE FOR USER

  I swich to Oracle11g express and create user
  CREATE USER LEO
  IDENTIFIED BY xy
  DEFAULT TABLESPACE USERS
  TEMPORARY TABLESPACE TEMP
  PROFILE DEFAULT
  ACCOUNT UNLOCK;
  -- 3 Roles for LEO
  GRANT AUTHENTICATEDUSER TO LEO;
  GRANT CONNECT TO LEO;
  GRANT FER_ADMIN TO LEO WITH ADMIN OPTION;
  ALTER USER LEO DEFAULT ROLE FER_ADMIN;
  -- 1 System Privilege for LEO
  GRANT CREATE SESSION TO LEO;
  -- 1 Tablespace Quota for LEO
  ALTER USER LEO QUOTA UNLIMITED ON USERS;
  and after login i check
  select * from SESSION_ROLES
  and i have none role
  if I set role all works fine.
  Why I doesn't have DEFAULT ROLE after login.
  Pleas for help .

  here is the solution
  default roles and grants
  Edited by: Leo Lakota on 4.10.2012 5:52

• Roles for user in supplier self-registration

  Hello everyone,
  I was checking the configuration guide for Strategic Sourcing and for Servece Procurement and I have a doubt.
  For supplier self-registration is needed an anonymous user, but in the guide for Strategic Sourcing says that the roles for this user are SAP_EC_BBP_CREATEUSER and SAP_EC_BBP_CREATEVENDOR, however, in the guide for Service Procurement says that the roles are SAP_BC_BASIS_MONITORING and SAP_EC_SUS_ADMIN_VENDOR
  What are the right ones?
  Thanks,
  Ivá

  Hi,
  The user should  have the  roles: SAP_EC_BBP_CREATEUSER & SAP_EC_BBP_CREATEVENDOR.
  This user is maintainted in ROS client BSP service ROS_SELF_REG in Log on Data
  with ROS client, user ID and password.
  BR,
  Disha.
  Do reward points for useful answers.

• Restrict permissions to use the groups/users/roles in User Administration

  Hello gurus,
     I want to find out if there is a way we can restrict permissions to use the GROUPS in User administration. We want to assign the user administration role to the users, but do not want the users to have permissions to DELETE groups from User administration page.
  Please also let me know, if we can just have users use the NWA to do the user administration instead of from the Portal?
  Thank you,
  ~~MK

  Hi MariaKutty,
  Koti is right, you need to create custom User administration role from standard role and restric the access in the custom role and assgined to the users.
  >Please also let me know, if we can just have users use the NWA to do the user administration instead of from the Portal?
  Then can to do from NWA also, if the user not required to have the portal access.
  Hope it helps
  Regards
  Arun

• Using Roles for Delagated Administration

  Hi all,
  Does anyone know if the following is possible in 2005Q1 version of Access Manager?
  I have created a top level organisation in Access Manager (dc=myorg,dc=com), and this organisation has some sub-organisations i.e (o=customers,dc=myorg,dc=com). What I would like to do is create a role in the top level organisation, to assign to users that will manage entries in sub-organisations.
  So for example, uid=chris,ou=people,dc=myorg,dc=com must be a user that can be assigned the role "Customer Admin" which will enable him to only create/administer users in ou=people,o=customers,dc=myorg,dc=com.
  Is this at all possible in Access Manager, and how would one go about setting up such a structure?
  Any help appreciated
  Thanx
  Chris

  Hello Chris,
  We have done this recently with our portal implementation. Check out:
  http://docs.sun.com/source/817-7691/dadmnadm.html
  The general steps are:
  1. Define the ACI's for the new "manager" roles
  2. Creating the manager roles with the above ACI's
  3. Configure Display Options for the manager roles
  4. Configure Available Actions for the manager roles
  5. Assign roles to users.
  Steps 1 and 2 are documented in the above link. The combination of steps 3 and 4 restrict the views of the AM console so the manager users only sees Users and Roles.
  Hope that helps
  Jeff

• Remove T Code for each ROLE for user

  Hi Experts
  Can anyone tell me how to remove the T code for each role which was define individually for users Eg
  CR01 has been assign to 50 users, the difficulty is I have to go to each role then search for CR01 t code then delete and again generate the Authorization
  In this way there are so many t codes which I have to go one by one to delete it.
  Any help to remove the t-code for each role through any way.
  regards
  Piroz

  try the Security forum at Security
  they might have trick (such as CATT scripts).
  doing this via SQL commands is dangerous. avoid this solution if you are not 100% sure of its impact.

• DOES WORKFLOW 2.6 REQUIRE ORACLE ACCOUNTS FOR USERS?

  We would like to integrate Oracle Workflow with our existing implementation of Oracle Portal. I was hoping that, by using OID accounts and groups, that SSO could be used to access whatever workflow functionality was required by our users WITHOUT also creating an Oracle account for each of these users.
  IS THIS FEASIBLE?

  There might be some configuration required, but this should work. Workflow only requires the Oracle HTTP Server + ModPLSQL to render screens.
  The Oracle Plug In for Microsoft IIS is available for Windows NT and Windows 2000.
  To quote the Configuration Guide:
  Oracle Plug-in for Microsoft IIS enables you to use Microsoft Internet Information Server (IIS), the Web server included with Windows NT, to directly access PL/SQL and Java Web components stored in the Oracle database server. This plug-in provides a fast and integrated method of accessing PL/SQL and Java Web components running in the IIS environment. Oracle Plug-in for Microsoft IIS provides functionality similar to Apache's PL/SQL Gateway (mod_plsql) and Apache's mod_ose in the IIS environment.
  Link to http://otn.oracle.com/docs/products/ias/doc_library/1022doc_otn/index.htm for more information.
  Hi,
  My client is evaluating Oracle Workflow and would like to know if we could use IIS for the web side of the Workflow applications.
  if not can Oralce 9ias be installed on the same server where IIS is currently installed.
  Any help is much appreciated.
  Many thanks
  Nazeer Ahmad Syed.

• Read-Only Role For User Admin

  Hi, I am trying to implement a role that would enable a user to have the same functionality as the out-of-the-box User Admin role, but that this user would not be able to actually create or modify users, roles assignments, etc.
  The idea is to have a 'Display' role - with read-only access.
  The solution we are comtemplating right now involves getting the source code from SAP, copying it, and modifying it - disabling any interaction. We would then create new iviews, pages, etc from there only for this role. This is a tedious task.
  Any ideas on how else this can be done?
  Thanks

  I have only managed to do this by creating a role and assigning the relevant User Admin iViews to the role and then changing the End User Permissions on the role.
  I assigned the ReadAll Premission. That did the trick for me.
  Groups unfortunately require the manage_groups Permission, so we do not allow the viewing of groups.